High-risk tools in Computer Control MCP

High severity Computer Control MCP MCP Server 10 of 15 tools

10 of the 15 tools in Computer Control MCP are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

activate_window Execute

Activate a window (bring it to the foreground) by matching its title. Args: title_pattern: Pattern to match window title use_regex: If True, treat the patte...
click_screen Execute

Click at the specified screen coordinates.
drag_mouse Execute

Drag the mouse from one position to another. Args: from_x: Starting X coordinate from_y: Starting Y coordinate to_x: Ending X coordinate to_...
key_down Execute

Hold down a specific keyboard key until released.
key_up Execute

Release a specific keyboard key.
mouse_down Execute

Hold down a mouse button ('left', 'right', 'middle').
mouse_up Execute

Release a mouse button ('left', 'right', 'middle').
move_mouse Execute

Move the mouse to the specified screen coordinates.
press_keys Execute

press_keys
type_text Execute

Type the specified text at the current cursor position.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

Destructive Action Autonomy
Runaway Tool Loops
Prompt Injection via Tool Results

High-risk tools in Computer Control MCP

Tools at high risk

Attacks that target this class

More on Computer Control MCP

Enforce policy on every Computer Control MCP tool call.